Due to the complexity and diversity of Industrial Internet of Things (IIoT) systems, which include heterogeneous devices, legacy and new connectivity protocols and systems, and distributed networks, sophisticated attacks like ransomware will likely target these systems in the near future. Researchers have focused on studying and addressing ransomware attacks against various platforms in recent years. However, to the best of our knowledge, no existing study investigates the new trends of ransomware tactics and techniques and provides a comprehensive analysis of ransomware attacks and their detection techniques for IIoT systems. Therefore, this paper investigates this attack and its associated detection techniques in IIoT systems in various aspects, including recent ransomware tactics, types, infected operating systems, and platforms. Specifically, we initially discuss the evolution of the IIoT system and its common architecture. Then, we provide an in-depth examination of the development of ransomware attacks and their constituent blocks, outline recent tactics and types of ransomware, and provide an extensive overview of the latest research on detection models. We also summarize numerous significant issues that have yet to be addressed and require further research. We conclude that offensive and defensive research is urgently needed to protect IIoT against ransomware attacks.

由于工业物联网(IIoT) 系统的复杂性和多样性，包括异构设备、传统和新的连接协议和系统以及分布式网络，勒索软件等复杂的攻击可能会在不久的将来针对这些系统。近年来，研究人员一直致力于研究和解决针对各种平台的勒索软件攻击。然而，据我们所知，现有的研究还没有调查勒索软件策略和技术的新趋势，并提供针对工业物联网系统的勒索软件攻击及其检测技术的全面分析。因此，本文从各个方面研究了这种攻击及其在工业物联网系统中的相关检测技术，包括最新的勒索软件策略、类型、受感染的操作系统和平台。具体来说，我们首先讨论工业物联网系统的演变及其通用架构。然后，我们深入研究勒索软件攻击的发展及其组成部分，概述勒索软件的最新策略和类型，并对检测模型的最新研究进行广泛概述。我们还总结了许多尚未解决并需要进一步研究的重大问题。我们的结论是，迫切需要进行进攻性和防御性研究，以保护工业物联网免受勒索软件攻击。